CVE-2006-6974 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

Headstart Solutions DeskPRO stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) list files in the includes/ directory; obtain the SQL username and password via a direct request for (2) config.php and (3) config.php.bak in includes/; read files in (4) email/, (5) admin/graphs/, (6) includes/javascript/, and (7) certain other includes/ directories via direct requests; and download SQL database data via direct requests for (8) data.sql, (9) install.sql, (10) settings.sql, and possibly other files in install/v2data/.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Headstart Solutions	Deskpro	All versions

References

http://www.zion-security.com/text/Mul_Vulnerability_DeskPro.txtExploitVendor Advisory
http://www.zion-security.com/text/Mul_Vulnerability_DeskPro.txtExploitVendor Advisory

FAQ

What is CVE-2006-6974?

CVE-2006-6974 is a vulnerability with a CVSS score of 7.5 (HIGH). Headstart Solutions DeskPRO stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) list files in the includes/ directory; obtain the SQL...

How severe is CVE-2006-6974?

CVE-2006-6974 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-6974?

Check the references section above for vendor advisories and patch information. Affected products include: Headstart Solutions Deskpro.